| |
|
RSS Feed - WebSphere MQ Support
|
RSS Feed - Message Broker Support
|
  |
|
| Handling Security exceptions in SOAPInput |
« View previous topic :: View next topic » |
| Author |
Message
|
| shalabh1976 |
 Posted: Wed Feb 18, 2009 10:51 pm Post subject: Handling Security exceptions in SOAPInput |
 |
|
Partisan
Joined: 18 Jul 2002
Posts: 381
Location: Gurgaon, India
|
As per the documentation
-"If you have designed the flow to be in a secure area and you want to explicitly perform processing of security exceptions, you can select the Treat Security Exceptions as normal exceptions property on the input nodes. This causes security exceptions to be processed in the same way as other exceptions in the message flow."
This can be found in http://publib.boulder.ibm.com/infocenter/wmbhelp/v6r1m0/topic/com.ibm.etools.mft.doc/ap04080_.htm
However this option is not available in the SOAP Input node. So how do we enable secutiry exceptions in the SOAPInput to be available on the failure terminal.
_________________
Shalabh
IBM Cert. WMB V6.0
IBM Cert. MQ V5.3 App. Prog.
IBM Cert. DB2 9 DB Associate |
|
| Back to top |
|
 |
| JT |
| Posted: Thu Feb 19, 2009 7:06 am Post subject: |
|
|
Padawan
Joined: 27 Mar 2003
Posts: 1564
Location: Hartford, CT.
|
Look into establishing a security profile.
| Quote: |
| When a message arrives at an input node, a security profile associated with the node indicates whether runtime security is configured. The broker’s security manager is called to read the profile, which specifies the combination of propagation, authentication, authorization and mapping to be performed with the identity of the message. It also specifies the external security provider to be used. You can create security profiles using either the mqsicreateconfigurableservice command or an editor in the Broker Administration perspective of the Message Broker Toolkit. You then use the Broker Archive editor to configure the security profile on the message flow. |
|
|
| Back to top |
|
|
| shalabh1976 |
| Posted: Wed Feb 25, 2009 10:32 pm Post subject: |
|
|
Partisan
Joined: 18 Jul 2002
Posts: 381
Location: Gurgaon, India
|
Hi,
We tried to do this
SOAP Input Node -> Properties -> Error Handling Tab -> Route inbound SOAP processing to failure terminal (select this checkbox).
However the message still did not appear at the failure terminal when an invalid security scenario was run.
Does this mean that security exceptions cannot be routed to the failure terminal for the SOAP Input node?
_________________
Shalabh
IBM Cert. WMB V6.0
IBM Cert. MQ V5.3 App. Prog.
IBM Cert. DB2 9 DB Associate |
|
| Back to top |
|
|
| dziku007 |
| Posted: Wed Feb 27, 2019 1:58 am Post subject: |
|
|
Apprentice
Joined: 26 Jul 2012
Posts: 32
|
Hi, I would like to reopen this question. Because I also ask myself why there is no such option as "Treat Security Exceptions as normal exceptions" in SOAPInput node. I have SOAPInput node which has securityProfile configured with external authentication provider. I would like to process (using my custom procedure) authentication error on webservice request.
According to https://www.ibm.com/support/knowledgecenter/en/SSMKHH_10.0.0/com.ibm.etools.mft.doc/ap04080_.htm there is such option designed for MQInput node or HTTPInput node, but SOAPInput node seems to be excluded.
I could write some proxy flow which receive soap message, then invoke SecurityPEP node to invoke authentication (with custom security exception procedure) and later invoke my origin flow, but it seems a bit overwhelming.
Is there any built in solution?
Using IIB 9.0.0.9
Thank You for any help. |
|
| Back to top |
|
|
|
|
|
| |
|
Page 1 of 1 |
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
|
|
